WPA2 Enterprise wireless authentication using the Fortitoken 300

The Fortitoken 300 can be used for 802.1x wireless authentication against a Radius server, implementation is similar to other smartcards whereby the user certificate is signed by a CA the Radius server trusts and loaded on the smartcard/Fortitoken. The client PC (wireless client) is configured to connect to the wireless access point using smartcard for authentication and the Radius server also is configured to accept smartcard/user certificate authentication. The Fortigate wireless controller is configured exactly the same way as for regular user/password authentication.

Both Windows Server 2008 and the FortiAuthenticator have been tested, some examples for each are included.

FortiAuth example
NPS example

Leave a Reply